1 files changed, 74 insertions, 6 deletions
diff --git a/src/lib/libcrypto/x509v3/v3_prn.c b/src/lib/libcrypto/x509v3/v3_prn.c
index 14b804c4ad..aeaf6170fe 100644
--- a/src/lib/libcrypto/x509v3/v3_prn.c
+++ b/src/lib/libcrypto/x509v3/v3_prn.c
@@ -64,6 +64,8 @@
 /* Extension printing routines */
+static int unknown_ext_print(BIO *out, X509_EXTENSION *ext, unsigned long flag, int indent, int supported);
 /* Print out a name+value stack */
 void X509V3_EXT_val_prn(BIO *out, STACK_OF(CONF_VALUE) *val, int indent, int ml)
@@ -103,16 +105,22 @@ void X509V3_EXT_val_prn(BIO *out, STACK_OF(CONF_VALUE) *val, int indent, int ml)
 /* Main routine: print out a general extension */
-int X509V3_EXT_print(BIO *out, X509_EXTENSION *ext, int flag, int indent)
+int X509V3_EXT_print(BIO *out, X509_EXTENSION *ext, unsigned long flag, int indent)
 {
-        char *ext_str = NULL, *value = NULL;
+        void *ext_str = NULL;
+        char *value = NULL;
        unsigned char *p;
        X509V3_EXT_METHOD *method;      
        STACK_OF(CONF_VALUE) *nval = NULL;
        int ok = 1;
-        if(!(method = X509V3_EXT_get(ext))) return 0;
+        if(!(method = X509V3_EXT_get(ext)))
+                return unknown_ext_print(out, ext, flag, indent, 0);
        p = ext->value->data;
-        if(!(ext_str = method->d2i(NULL, &p, ext->value->length))) return 0;
+        if(method->it) ext_str = ASN1_item_d2i(NULL, &p, ext->value->length, ASN1_ITEM_ptr(method->it));
+        else ext_str = method->d2i(NULL, &p, ext->value->length);
+        if(!ext_str) return unknown_ext_print(out, ext, flag, indent, 1);
        if(method->i2s) {
                if(!(value = method->i2s(method, ext_str))) {
                        ok = 0;
@@ -148,11 +156,71 @@ int X509V3_EXT_print(BIO *out, X509_EXTENSION *ext, int flag, int indent)
        err:
                sk_CONF_VALUE_pop_free(nval, X509V3_conf_free);
                if(value) OPENSSL_free(value);
-                method->ext_free(ext_str);
+                if(method->it) ASN1_item_free(ext_str, ASN1_ITEM_ptr(method->it));
+                else method->ext_free(ext_str);
                return ok;
 }
-#ifndef NO_FP_API
+int X509V3_extensions_print(BIO *bp, char *title, STACK_OF(X509_EXTENSION) *exts, unsigned long flag, int indent)
+{
+        int i, j;
+        if(sk_X509_EXTENSION_num(exts) <= 0) return 1;
+        if(title) 
+                {
+                BIO_printf(bp,"%*s%s:\n",indent, "", title);
+                indent += 4;
+                }
+        for (i=0; i<sk_X509_EXTENSION_num(exts); i++)
+                {
+                ASN1_OBJECT *obj;
+                X509_EXTENSION *ex;
+                ex=sk_X509_EXTENSION_value(exts, i);
+                if (BIO_printf(bp,"%*s",indent, "") <= 0) return 0;
+                obj=X509_EXTENSION_get_object(ex);
+                i2a_ASN1_OBJECT(bp,obj);
+                j=X509_EXTENSION_get_critical(ex);
+                if (BIO_printf(bp,": %s\n",j?"critical":"","") <= 0)
+                        return 0;
+                if(!X509V3_EXT_print(bp, ex, flag, 12))
+                        {
+                        BIO_printf(bp, "%*s", indent + 4, "");
+                        M_ASN1_OCTET_STRING_print(bp,ex->value);
+                        }
+                if (BIO_write(bp,"\n",1) <= 0) return 0;
+                }
+        return 1;
+}
+static int unknown_ext_print(BIO *out, X509_EXTENSION *ext, unsigned long flag, int indent, int supported)
+{
+        switch(flag & X509V3_EXT_UNKNOWN_MASK) {
+                case X509V3_EXT_DEFAULT:
+                return 0;
+                case X509V3_EXT_ERROR_UNKNOWN:
+                if(supported)
+                        BIO_printf(out, "%*s<Parse Error>", indent, "");
+                else
+                        BIO_printf(out, "%*s<Not Supported>", indent, "");
+                return 1;
+                case X509V3_EXT_PARSE_UNKNOWN:
+                        return ASN1_parse_dump(out,
+                                ext->value->data, ext->value->length, indent, -1);
+                case X509V3_EXT_DUMP_UNKNOWN:
+                        return BIO_dump_indent(out, (char *)ext->value->data, ext->value->length, indent);
+                default:
+                return 1;
+        }
+}
+        
+#ifndef OPENSSL_NO_FP_API
 int X509V3_EXT_print_fp(FILE *fp, X509_EXTENSION *ext, int flag, int indent)
 {
        BIO *bio_tmp;

diff --git a/src/lib/libcrypto/x509v3/v3_prn.c b/src/lib/libcrypto/x509v3/v3_prn.c index 14b804c4ad..aeaf6170fe 100644 --- a/src/lib/libcrypto/x509v3/v3_prn.c +++ b/src/lib/libcrypto/x509v3/v3_prn.c
@@ -64,6 +64,8 @@
64		64
65	/* Extension printing routines */	65	/* Extension printing routines */
66		66
		67	static int unknown_ext_print(BIO out, X509_EXTENSION ext, unsigned long flag, int indent, int supported);
		68
67	/* Print out a name+value stack */	69	/* Print out a name+value stack */
68		70
69	void X509V3_EXT_val_prn(BIO out, STACK_OF(CONF_VALUE) val, int indent, int ml)	71	void X509V3_EXT_val_prn(BIO out, STACK_OF(CONF_VALUE) val, int indent, int ml)
@@ -103,16 +105,22 @@ void X509V3_EXT_val_prn(BIO out, STACK_OF(CONF_VALUE) val, int indent, int ml)
103		105
104	/* Main routine: print out a general extension */	106	/* Main routine: print out a general extension */
105		107
106	int X509V3_EXT_print(BIO out, X509_EXTENSION ext, int flag, int indent)	108	int X509V3_EXT_print(BIO out, X509_EXTENSION ext, unsigned long flag, int indent)
107	{	109	{
108	char ext_str = NULL, value = NULL;	110	void *ext_str = NULL;
		111	char *value = NULL;
109	unsigned char *p;	112	unsigned char *p;
110	X509V3_EXT_METHOD *method;	113	X509V3_EXT_METHOD *method;
111	STACK_OF(CONF_VALUE) *nval = NULL;	114	STACK_OF(CONF_VALUE) *nval = NULL;
112	int ok = 1;	115	int ok = 1;
113	if(!(method = X509V3_EXT_get(ext))) return 0;	116	if(!(method = X509V3_EXT_get(ext)))
		117	return unknown_ext_print(out, ext, flag, indent, 0);
114	p = ext->value->data;	118	p = ext->value->data;
115	if(!(ext_str = method->d2i(NULL, &p, ext->value->length))) return 0;	119	if(method->it) ext_str = ASN1_item_d2i(NULL, &p, ext->value->length, ASN1_ITEM_ptr(method->it));
		120	else ext_str = method->d2i(NULL, &p, ext->value->length);
		121
		122	if(!ext_str) return unknown_ext_print(out, ext, flag, indent, 1);
		123
116	if(method->i2s) {	124	if(method->i2s) {
117	if(!(value = method->i2s(method, ext_str))) {	125	if(!(value = method->i2s(method, ext_str))) {
118	ok = 0;	126	ok = 0;
@@ -148,11 +156,71 @@ int X509V3_EXT_print(BIO out, X509_EXTENSION ext, int flag, int indent)
148	err:	156	err:
149	sk_CONF_VALUE_pop_free(nval, X509V3_conf_free);	157	sk_CONF_VALUE_pop_free(nval, X509V3_conf_free);
150	if(value) OPENSSL_free(value);	158	if(value) OPENSSL_free(value);
151	method->ext_free(ext_str);	159	if(method->it) ASN1_item_free(ext_str, ASN1_ITEM_ptr(method->it));
		160	else method->ext_free(ext_str);
152	return ok;	161	return ok;
153	}	162	}
154		163
155	#ifndef NO_FP_API	164	int X509V3_extensions_print(BIO bp, char title, STACK_OF(X509_EXTENSION) *exts, unsigned long flag, int indent)
		165	{
		166	int i, j;
		167
		168	if(sk_X509_EXTENSION_num(exts) <= 0) return 1;
		169
		170	if(title)
		171	{
		172	BIO_printf(bp,"%*s%s:\n",indent, "", title);
		173	indent += 4;
		174	}
		175
		176	for (i=0; i<sk_X509_EXTENSION_num(exts); i++)
		177	{
		178	ASN1_OBJECT *obj;
		179	X509_EXTENSION *ex;
		180	ex=sk_X509_EXTENSION_value(exts, i);
		181	if (BIO_printf(bp,"%*s",indent, "") <= 0) return 0;
		182	obj=X509_EXTENSION_get_object(ex);
		183	i2a_ASN1_OBJECT(bp,obj);
		184	j=X509_EXTENSION_get_critical(ex);
		185	if (BIO_printf(bp,": %s\n",j?"critical":"","") <= 0)
		186	return 0;
		187	if(!X509V3_EXT_print(bp, ex, flag, 12))
		188	{
		189	BIO_printf(bp, "%*s", indent + 4, "");
		190	M_ASN1_OCTET_STRING_print(bp,ex->value);
		191	}
		192	if (BIO_write(bp,"\n",1) <= 0) return 0;
		193	}
		194	return 1;
		195	}
		196
		197	static int unknown_ext_print(BIO out, X509_EXTENSION ext, unsigned long flag, int indent, int supported)
		198	{
		199	switch(flag & X509V3_EXT_UNKNOWN_MASK) {
		200
		201	case X509V3_EXT_DEFAULT:
		202	return 0;
		203
		204	case X509V3_EXT_ERROR_UNKNOWN:
		205	if(supported)
		206	BIO_printf(out, "%*s<Parse Error>", indent, "");
		207	else
		208	BIO_printf(out, "%*s<Not Supported>", indent, "");
		209	return 1;
		210
		211	case X509V3_EXT_PARSE_UNKNOWN:
		212	return ASN1_parse_dump(out,
		213	ext->value->data, ext->value->length, indent, -1);
		214	case X509V3_EXT_DUMP_UNKNOWN:
		215	return BIO_dump_indent(out, (char *)ext->value->data, ext->value->length, indent);
		216
		217	default:
		218	return 1;
		219	}
		220	}
		221
		222
		223	#ifndef OPENSSL_NO_FP_API
156	int X509V3_EXT_print_fp(FILE fp, X509_EXTENSION ext, int flag, int indent)	224	int X509V3_EXT_print_fp(FILE fp, X509_EXTENSION ext, int flag, int indent)
157	{	225	{
158	BIO *bio_tmp;	226	BIO *bio_tmp;